Buffer overflow vulnerability in the DB2 Administration Server (DAS) component in IBM DB2 (Linux)ID: oval:org.secpod.oval:def:2280 | Date: (C)2011-09-23 (M)2022-10-10 |
Class: VULNERABILITY | Family: unix |
The host is installed with IBM DB2 9.1 before FP10 or 9.5 before FP7 or 9.7 before FP3 and is prone to buffer overflow vulnerability. A flaw is present in the DB2 Administration Server (DAS) component of the application, which is caused due to a boundary error in the "receiveDASMessage()" function in db2dasrrm. Successful exploitation allows remote attackers to cause a denial of service, or execution of arbitrary code.